Hi a lan-lan IPsec tunnel

Abdulkader Naji · ‎02-09-2016

I have to sites A and B .the Site A have router connected to ADSL Modem for internet connection and Site B has the same but I have Public IP on Site B Modem.

Now I want to make the two network connected to each other with all feature .

I read alot about VPN Site to Site but not sure what is the suitable configuration.

Site A Router Model 2800 and the other Site B Model 2800.

What do you suggest.

Thanks

Mark Malone · ‎02-09-2016

Hi a lan-lan IPsec tunnel would do as an option , quite easy to setup as well

here's 2 good docs explain it will , just create IPsec and tunnel and then apply acl to allow what you want down tunnel

Have your modems in bridge mode so public ip terminates on Cisco gear to form tunnel

http://www.firewall.cx/cisco-technical-knowledgebase/cisco-routers/867-cisco-router-site-to-site-ipsec-vpn.html

http://www.cisco.com/c/en/us/support/docs/routers/1700-series-modular-access-routers/71462-rtr-l2l-ipsec-split.html

Abdulkader Naji · ‎02-09-2016

the cisco router has static router to the ADSL Router and NAT happens at ADSL Modem not the cisco router in this case what I have to change on the configuration.

Thanks

Mark Malone · ‎02-09-2016

The nat would need to be on the Cisco router not the modem as the modem needs to be in bridge mode so the public ip is available on it for the ipsec

so you need to configure the Cisco router for nat

Example

http://www.cisco.com/c/en/us/support/docs/security-vpn/ipsec-negotiation-ike-protocols/14132-ios-D.html

How to implement VPN